Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/aBSgxcW581Q35ysnRtLO_edoXfo.roa
File: aBSgxcW581Q35ysnRtLO_edoXfo.roa (raw, json)
Hash identifier: 249x5w68ZlbOROHdQq5+Mzb6SgxsiVjoXNVg2uYJs/c=
Subject key identifier: 68:14:A0:C5:C5:B9:F3:54:37:E7:2B:27:46:D2:CE:FD:E7:68:5D:FA
Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Certificate serial: 01C5
Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/aBSgxcW581Q35ysnRtLO_edoXfo.roa
Signing time: Thu 15 Sep 2022 02:34:54 +0000
ROA not before: Thu 15 Sep 2022 02:34:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38042
IP address blocks: 103.158.228.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453 (0x1c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Validity
Not Before: Sep 15 02:34:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6814A0C5C5B9F35437E72B2746D2CEFDE7685DFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:ee:e4:8e:14:82:a5:45:3d:c9:2d:79:7d:
74:2c:51:24:54:ab:ef:0e:e8:fe:b1:fa:cc:94:80:
39:f3:4f:8a:5d:2a:86:ab:c4:df:42:79:91:00:b0:
8d:f8:77:bf:37:7e:21:66:17:8e:2c:fe:e2:1d:d8:
24:b9:b5:9f:33:3b:8e:37:9d:68:72:ef:ed:09:11:
b8:01:29:ad:0c:2a:9e:75:af:81:bf:35:3b:fd:30:
8b:55:a7:9d:30:e1:1e:3c:cd:15:39:8a:c5:f4:87:
5c:2a:c1:81:69:f8:61:ec:5d:56:27:a1:de:d0:72:
30:cd:23:0f:b7:94:65:49:e1:29:a8:e0:94:16:cd:
05:c3:5f:92:e6:02:27:69:23:d3:65:5e:d3:ea:e4:
b9:d9:e9:c4:c9:a4:8e:90:f6:d2:14:05:ce:4f:bf:
8a:7b:8f:93:b2:5e:31:bc:c2:75:37:66:f4:21:ef:
6b:9e:72:b0:3d:1e:e8:50:42:4c:78:71:7f:a3:7f:
4f:fb:a2:7d:5e:47:ff:03:6a:c7:0e:98:b3:f3:f8:
f0:03:9e:26:1e:12:e0:b4:72:55:4c:29:d9:e2:94:
23:59:fa:cc:9c:05:d0:6e:12:27:6e:a8:da:c6:96:
50:6b:f5:64:89:b4:47:73:9c:10:f8:88:83:71:f9:
dd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:14:A0:C5:C5:B9:F3:54:37:E7:2B:27:46:D2:CE:FD:E7:68:5D:FA
X509v3 Authority Key Identifier:
keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/aBSgxcW581Q35ysnRtLO_edoXfo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.228.0/23
Signature Algorithm: sha256WithRSAEncryption
16:59:54:dd:35:55:5b:05:16:36:6d:3a:05:3d:87:c6:2b:03:
0e:e3:89:6c:df:e7:3f:a2:e1:f9:6a:c5:ee:81:2d:38:06:1f:
2c:68:1d:b1:31:ef:7d:75:d4:43:2c:f5:78:5d:98:d4:19:31:
15:e7:55:9d:17:eb:e6:18:7d:23:3b:76:12:95:3a:18:bb:ba:
0c:46:ab:9a:2e:f0:de:2d:3e:4b:f7:68:c8:49:e8:e4:b7:b5:
30:8b:70:ea:10:9c:d1:fa:8e:53:50:d2:80:99:76:20:67:a3:
26:29:ed:cd:c3:4e:d9:b3:6c:e5:a0:d0:11:69:66:4d:67:5f:
07:26:a3:1b:67:11:72:bd:5b:1c:ba:8d:c3:95:f2:a3:fe:1a:
f2:8b:7a:83:b6:a0:d6:23:21:18:be:11:14:3c:8a:db:fc:d4:
a9:07:ae:d5:db:65:c6:88:f4:bf:1a:06:6a:e2:06:1e:aa:95:
4d:54:12:2f:fb:2c:55:fc:17:7f:8f:6d:c2:b1:80:cf:2a:4a:
9b:ae:e4:f7:0b:9a:ec:ef:73:76:01:79:12:71:97:e4:85:81:
16:f2:ca:3c:b0:0e:c6:ca:57:02:5c:b6:79:df:82:db:62:b0:
9a:1f:7c:55:e7:d8:03:08:d3:b7:5e:ce:0d:33:ff:4a:48:32:
d1:8b:52:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org